FortiBleed attack uses leaked passwords to compromise Fortinet devices worldwide
A major cyberattack called "FortiBleed" has hit tens of thousands of Fortinet firewalls and VPNs worldwide.
Hackers got in by using leaked passwords, according to Hudson Rock and SOCRadar.
They used automated tools to scan the internet for exposed devices, then stole sensitive data and more credentials.
Over 73,000 Fortinet URLs compromised
Over 73,000 Fortinet URLs and more than 30,000 hacked devices were compromised, impacting major companies like Accenture, Comcast, Samsung, Siemens, and Lenovo.
The hardest-hit regions include India, the US Taiwan, and Mexico. Most affected sectors are IT services, construction materials, and telecommunications.
The attack is linked to Russian-speaking hackers, unlike past hacks that used software bugs; this one relied just on leaked passwords.